RBS WorldPay downplays database hack reports

John Leyden reports:

RBS WorldPay and a hacker are at loggerheads over the seriousness of a supposed breach on websites run by the payment processing firm.

Security shortcomings – since blocked – on RBS WorldPay website exposed confidential information, including admin passwords and the contact details of partners, according to blog posts by Romanian hacker Unu.

The grey-hat hacker previously exposed similar problems on the websites of the UK parliament and HSBC France, among many others. As before he published screenshots to back up his latest claims.

[…]

In a statement issued on Friday afternoon, RBS WorldPay said that a security audit has established that access to either merchants or cardholder accounts was not possible via any of the reported vulnerabilities.

Read more on The Register.

About the author: Dissent

Comments are closed.